The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different vulnerability types.

FreeBSD is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle certain request. An attacker can exploit these issues to cause the application to crash, denying service to legitimate users.